CVE-2020-2229 — Jenkins Cross-Site Scripting vulnerability in help icons

Description

Jenkins 2.251 and earlier, LTS 2.235.3 and earlier does not escape the tooltip content of help icons. Tooltip values can be contributed by plugins, some of which use user-specified values. This results in a stored cross-site scripting (XSS) vulnerability. Jenkins 2.252, LTS 2.235.4 escapes the tooltip content of help icons.

How to fix CVE-2020-2229

To remediate CVE-2020-2229, upgrade the affected package to a fixed version below.

—upgrade to 2.251.1 or later
—upgrade to 2.235.4 or later

Is CVE-2020-2229 being exploited?

Low — EPSS is 2.6%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0, < 2.251.1
from 0, < 2.235.4

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH8.0	CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

References (6)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2020-2229
PATCHgithub.com/jenkinsci/jenkins
WEBpacketstormsecurity.com/files/160443/Jenkins-2.235.3-Cross-Site-Scripting.html
WEBgithub.com/jenkinsci/jenkins/commit/fe4cbe03804d6240d0b58d0b2301ea9530a34916